I’m pretty rough on all the Internet and info-tech policy books that I review. There are two reasons for that. First, the vast majority of tech policy books being written today should never have been books in the first place. Most of them would have worked just fine as long-form (magazine-length) essays. Too many authors stretch a promising thesis into a long-winded, highly repetitive narrative just to say they’ve written an entire book about a subject. Second, many info-tech policy books are poorly written or poorly argued. I’m not going to name names, but I am frequently unimpressed by the quality of many books being published today about digital technology and online policy issues.

The books of Harvard University cyberlaw scholars John Palfrey and Urs Gasser offer a welcome break from this mold. Their recent books, Born Digital: Understanding the First Generation of Digital Natives, and Interop: The Promise and Perils of Highly Interconnected Systems, are engaging and extremely well-written books that deserve to be books. There’s no wasted space or mindless filler. It’s all substantive and it’s all interesting. I encourage aspiring tech policy authors to examine their works for a model of how a book should be done.

In a 2008 review, I heaped praise on Born Digital and declared that this “fine early history of this generation serves as a starting point for any conversation about how to mentor the children of the Web.” I still recommend highly to others today. I’m going to be a bit more critical of their new book, Interop, but I assure you that it is a text you absolutely must have on your shelf if you follow digital policy debates. It’s a supremely balanced treatment of a complicated and sometimes quite contentious set of information policy issues.

In the end, however, I am concerned about the open-ended nature of the standard that Palfrey and Gasser develop to determine when government should intervene to manage or mandate interoperability between or among information systems. I’ll push back against their amorphous theory of “optimal interoperability” and offer an alternative framework that suggests patience, humility, and openness to ongoing marketplace experimentation as the primary public policy virtues that lawmakers should instead embrace.

Interop is Important, but Often Difficult & Filled with Trade-Offs

Palfrey and Gasser begin by noting that “there is no single, agreed-upon definition of interoperability” and that “there are even many views about what interop is and how it should be achieved” (p. 5). They set out to change that by developing “a normative theory identifying what we want out of all this interconnectivity” that the information age has brought us (p. 3).

Generally speaking, Palfrey and Gasser believe increased interoperability — especially among information networks and systems — is a good thing because it “provides consumers greater choice and autonomy” (p. 57), “is generally good for competition and innovation” (p. 90), and “can lead to systemic efficiencies” (p. 129).

But they wisely acknowledge that there are trade-offs, too, noting that “this growing level of interconnectedness comes at an increasingly high price” (p. 2). Whether we are talking about privacy, security, consumer choice, the state of competition, or anything else, Palfrey and Gasser argue that “the problems of too much interconnectivity present enormous challenges both for organizations and for society at large” (p. 2). Their chapter and privacy and security offers many examples, but one need only look around at their own digital existence to realize the truth of this paradox. The more interconnected our information systems become, and the more intertwined our social and economic lives become with those systems, the greater the possibility of spam, viruses, data breaches, and various types of privacy or reputational problems. Interoperability giveth and it taketh away.

When Does “the Public Interest” Demand Interoperability Regulation?

So, how do we know when increased interoperability is good for us or society? How do we strike a reasonable balance? And, most controversially, when should government intervene to tip the balance in one direction or another?

Palfrey and Gasser return to these questions repeatedly throughout the book but admit that their answers will be dissatisfying since “there is no single form or optimal amount of interoperability that will suit every circumstance” (p. 76). Thus, “most of the specifics of how to bring interop about [must] be determined on a case-by-case basis (p. 17). They elaborate:

That can feel unsatisfying. But it is an essential truth: the most interesting interop problems relate to society’s most complex and most fundamental systems. Their answers are never simple to come by, nor are they easy to implement. This characteristic of interop theory is a feature, not a bug. … The price to be paid for striving for a universal principle at the level of theory is that such a theory is full of nuances when it comes to application and practice (p. 17-18).

Fair enough. Yet, Palfrey and Gasser also make it clear they want government(s) to play an active role in ensuring optimal interoperability. They say they favor “blended approaches that draw upon the comparative advantages of the private and public sector” (p. 161), but they argue that government should feel free to tip or nudge interoperability determinations in superior directions. “If deployed with skill,” they argue, “the law can play a central role in ensuring that we get as close as possible to optimal levels of interoperability in complex systems” (p. 88).

That phrase — “optimal level of interoperability” — pops up repeatedly throughout the book. So, too, does the phrase “the public interest.” Palfrey and Gasser argue that governments must look out for “the public interest” and “optimal interoperability” since “market forces do not automatically lead to appropriate standards or to the adoption of the best available technology” (p. 167). Here they introduce two additional amorphous values that complicate the debate: “appropriate standards” and “best available technology.”

The fundamental problem this “public interest” approach to interoperability regulation is that it is no better than the “I-know-it-when-I-see-it” standard we sometimes at work in the realm of speech regulation. It’s an empty vessel, and if it is the lodestar by which policymakers make determinations about the optimal level of interoperability, then it leaves markets, innovators, and consumers subject to the arbitrary whims of what a handful of politicians or regulators think constitutes “optimal interoperability,” “appropriate standards,” and “best available technology.”

On the Limits of Knowledge

Palfrey and Gasser’s framework feels more than just “unsatisfying” in this regard; it feels downright insufficient. That’s because it is missing a major variable: the extent to which state actors are able to adequately define those terms or accurately forecast the future needs of markets or citizen-consumers.

Surprisingly, Palfrey and Gasser don’t really spend much time discussing the specific remedies the state might impose to achieve optimal interoperability. I would have liked to have seen them develop a matrix of interop options and then outline the strengths and weaknesses of each. But even absent a more detailed discussion of possible regulatory remedies, I would have settled for more concrete answers to the following questions: Why are we to assume that regulators possess the requisite knowledge needed to know when it makes sense to foreclose ongoing marketplace experimentation? And why should we trust that, by substituting their own will for that of countless other actors in the information technology marketplace, we will be left better off?

The closest Palfrey and Gasser get to defining a firm standard for when and why such state intervention is warranted comes on page 173 when they are discussing the need for the state to establish sound reasons for intervention. They argue:

The objective should not be interoperability per se but, rather, one or more public policy goal to which interoperability can lead. The goals that usually make sense are innovation and competition, but other objectives might include consumer choice, ease of use of a technology or system, diversity, and so forth (p. 173).

This is a bit better, but it still doesn’t fully grapple with the cost side of the cost-benefit calculus for intervention. Palfrey and Gasser are willing to at least acknowledge some of those problems when they remark that “the state is rarely in a position to call a winner among competing technologies” (p. 174). Moreover,

Lawmakers need to keep in view the limits of their own effectiveness when it comes to accomplishing optimal levels of interoperability. Case studies of government intervention, especially where complex information technologies are involved, show that states tend to be ill suited to determine on their own what specific technology will be the best option for the future (p. 175)

Quite right! Yet, that insight does not seem to influence their calls elsewhere in the book for regulatory activism. That’s a shame since the admonition about policymakers recognizing the “limits of their own effectiveness” should be able to help us devise some limiting principles regarding the state’s role.

Toward an Alternative Theory: Experimental, Evolutionary Interoperability

Allow me to offer a different theory of optimal interoperability that flows from these previous insights. It’s based on a more dynamic view of markets and the central importance of experimentation in the face of uncertainty. Let me just go ahead and articulate the core principles of what I will refer to as  “experimental, evolutionary interoperability theory.” Then I’ll explain it in more detail

• Experimental, evolutionary interoperability : The theory that ongoing marketplace experimentation with technical standards, modes of information production and dissemination, and interoperable information systems, is almost always preferable to the artificial foreclosure of this dynamic process through state action. The former allows for better learning and coping mechanisms to develop while also incentivizing the spontaneous, natural evolution of the market and market responses. The latter (regulatory foreclosure of experimentation) limits that potential.

Palfrey and Gasser would label this a “laissez-faire” theory of interoperability and oppose it since they believe “a pure laissez-faire approach to interop rarely works out well” (p. 160). But they are wrong, at least to the extent they include the sweeping modifier “rarely” to describe this model’s effectiveness. In reality, the vast majority of interoperability that occurs into today’s information economy happens in a completely natural, evolutionary fashion without any significant state intervention whatsoever. In countless small and big ways alike, interconnection and interoperability happens every day throughout society. Yes, it is true that interoperability often happens against the backdrop of a legal system that allows court action to enforce certain rights or address perceived harms, but I would not classify that as a significant direct state intervention to tip or nudge interconnection decisions in one direction or another. And when interoperability doesn’t happen naturally, there are often good reasons it doesn’t and, even if there aren’t, non-interop spawns beneficial marketplace reactions and innovations.

Experimental, evolutionary interoperability theory flows out of Schumpeterian competition theory and the related field of evolutionary economics, but it is also heavily influenced by public choice theory (which stresses the limitations of romanticized theories of politics, planning, and “public interest” regulation). This alternative theory begins by accepting the simple fact that, as Austrian economist F.A. Hayek taught us, “progress by its very nature cannot be planned.” The wiser man, Hayek noted, “is very much aware that we do not know all the answers and that he is not sure that the answers he has are certainly the right ones or even that we can find all the answers.”

Ongoing experimentation with varying business models and modalities of social and economic production allows us to see what consumer choice and trial and error experimentation yields naturally over time. Ongoing experiments with flexible, voluntary interop standards and negotiations also allows us to determine which technological standards seem to benefit consumers in the short-term while also encouraging innovators to leap-frog existing standards and platforms when they become locked-in for too long or seem sub-optimal.

In the short-term, it is entirely possible that such voluntary, evolutionary interop experiments “fail” in various ways. That is often a good thing. Failures are how individuals and a society learn to cope with change and devise systems and solutions to accommodate technological change. As Samuel Beckett once counseled: “Ever tried. Ever failed. No matter. Try Again. Fail again. Fail better.” Progress depends upon an embrace of this uncertainty and acceptance of a world of constant upheaval if we are to learn how to cope, adapt, and move forward.

In this model, technological innovation often springs from the quest for the prize of market power.  Palfrey and Gasser generally reject this Schumpeterian vision of dynamic competition, but they at least do a nice job of describing it:

firms may have a stronger incentive to be innovative when low levels of interoperability promise higher or even monopoly profits. This sort of competition… creates incentives for firms to come up with entirely new generations of technologies or business methods that are proprietary (p. 121).

They reject this approach based on (1) the mistaken notion that the quest of the prize of market power ends in the attainment and preservation of that market power; and (2) the belief that policymakers possess the ability to set us on a better course through wise interventions.

In a moment, I’ll prove why that is misguided by examining a few real-world cases studies. For now, however, let’s return to Palfrey & Gasser’s central operating principle and contrast it with the vision I’ve articulated here. Recall that they argue “it is important to maintain and facilitate diversity in the marketplace. We simply want systems to work together when we want them to and to not work together when we do not.” Again, there is no standard here if one is suggesting this as the principle by which to determine when state intervention is desirable . But if one is looking at that aspirational statement as a description of the natural order of things — namely, that we do indeed “want systems to work together when we want them to and to not work together when we do not” — then that is a perfectly sound principle for understanding why state intervention should be disfavored in all but the most extreme circumstances. To reiterate: We should not allow the state to foreclose interoperability experiments because (a) those experiments have value in and of themselves, and (b) state action is likely to have myriad unintended consequences and unforeseen costs that are not easily remedied or reversed.

There are moments in the book when Palfrey and Gasser appear somewhat sympathetic to the sort of alternative “evolutionary interop” theory I have articulated here. For example, they note that:

The web is a great equalizer for technology firms. As consumers, we have come to expect that everything will work together without incident or interruption. We think it bizarre when something in the digitally networked world does not mesh with something else, perceiving whatever it is to be broken, in need of repair. This high degree of expectation is a powerful driver of interoperability. Market players are increasingly responding to this consumer demand and making these invisible links work for their customers without any government intervention” (p. 28) [italics added]

You won’t be surprised to hear that I agree wholeheartedly! Moreover, what it really proves is that ongoing marketplace experimentation and the evolution of norms and standards generally solve interoperability problems as they develop. That doesn’t mean markets are perfectly competitive or always produce perfect interoperability. But, again, why should we believe state intervention will do a better job? And isn’t it possible that intervention could negatively counter those natural instincts that Palfrey and Gasser describe about how consumers and market actors interact to make those “invisible links” work out as nicely as they do today?

Interop, Competition & Innovation: Some Cases Studies of Evolutionary Interoperability in Action

To better explain experimental, evolutionary interop theory and how it plays out in the real-world, let’s examine the complex relationship between interoperability, competition, and innovation in the information economy through the prism of three case studies: AOL and instant messaging, video game consoles, and smartphones.

AOL

America Online’s (AOL) case study is probably the most profound example of Schumpeterian creative destruction rapidly eroding the market power of a once “dominant” digital giant. Not long ago, AOL was cast as the great villain of online openness and interoperability. In fact, when Lawrence Lessig penned his acclaimed book Code in the late 1990s, AOL was supposedly set to become the corporate enslaver of cyberspace.

For a time, it was easy to see why Lessig and others were worried. Twenty five million subscribers were willing to pay $20 per month to get a guided tour of AOL’s walled garden version of the Internet. Then AOL and media titan Time Warner announced a historic mega-merger that had some predicting the rise of “new totalitarianisms” and corporate “Big Brother.”

Fearing the worst, several conditions were placed on approval of the merger by both the Federal Trade Commission and the Federal Communication Commission. These included “open access” provisions that forced Time Warner to offer the competing ISP service from the second largest ISP at that time (Earthlink) before it made AOL’s service available across its largest cable divisions.  Another provision imposed by the FCC mandated interoperability of instant messaging systems based on the fear that AOL was poised to monopolize that emerging technology.

Palfrey and Gasser suggest this was a necessary and effective intervention. “The AOL IM case is another instance in which the role of government was key in establishing a more interoperable ecosystem” and they credit the FCC’s action with cutting AOL’s share of the IM (p. 68-9). That’s a huge stretch. The reality is that markets and technologies evolved around AOL’s walled garden and decimated whatever advantage the firm had in either the web portal business or instant messaging market.

First, despite all the hand-wringing and regulatory worry, AOL’s merger with Time Warner quickly went off the rails and AOL’s online “dominance” quickly evaporated. Looking back at the deal with TW, Fortune magazine senior editor Allan Sloan called it the “turkey of the decade” since it cost shareholders hundreds of billions. Second, AOL’s attempt to construct the largest walled garden ever also failed miserably as organic search and social networking flourished. Consumers showed they demanded more than the hand-held tour of cyberspace.

Finally, the hysteria about AOL’s threat to monopolize instant messaging and deny interoperability proved particularly unwarranted and also serves as a cautionary tale for those who argue regulation is needed to solve interoperability problems. At the time, well-heeled major competitors like Yahoo and Microsoft already had significant competing IM platforms, and others were rapidly developing. Interoperability among those systems was also spontaneously developing as consumers demanded greater flexibility among and within their communications systems. The development of Trillian, which allowed IM users to see all their various IM feeds at once, was an early precursor of what was to come. Today, anyone can download a free chat client like Digsby or Adium to manage multiple IM and email services from Yahoo!, Google, Facebook and just about anyone else, all within a single interface, essentially making it irrelevant which chat service friends use.

In a truly Schumpetrian sense, innovators came in and disrupted AOL’s plans to dominate instant messaging with innovative offerings that few critics or regulators would have believed possible just a decade ago. Progress happened, and nobody planned it from above. The FCC’s IM interoperability provision was quietly sunset less than three years after its inception since the evolution of technology and markets had rapidly eliminated the perceived problem. That mandate, as it turned out, wasn’t needed at all, and all it probably accomplished during its short life span was to hobble AOL’s ability to find a way to remain relevant in the increasingly competitive Web. 2.0 world.

Video game consoles

At first blush, the video game console wars might seem like the ideal case study for those who favor greater interoperability regulation. After all, in a static sense, why do we really need several competing video game platforms that prevent consumers from playing their games on more than one system? The lack of console interoperability also drives up development costs for game makers. Many of those developers would prefer to just code games for a single, universal gaming platform. Therefore, isn’t this the perfect excuse for state intervention to ensure “optimal interoperability”?

To the contrary, this is another example of why government should generally avoid intervening to try to achieve some sort of artificial optimal interoperability. This market has undergone continuous, turbulent change and witnessed remarkable pro-consumer innovation despite a lack of interoperability.

The video game console wars have raged since the late 1970s. The first generation of consoles was dominated Atari (2600), Mattel (Intellivision), and Coleco (ColecoVision). By the mid-1980s, the industry saw a new cast of characters displace the old players. Nintendo (NES), and Sega (Genesis) took the lead. Atari attempted a rebirth with its “Jaguar” console but failed miserably.

The demise of Atari’s 2600 console was particularly notable. When it debuted in 1977, the system revolutionized the home game market on its way to selling more than 30 million units.  For a few years, it utterly dominated the console market and the company “rushed out games, assuming that its customers would play whatever it released,” notes New York Times reporters Sam Grobart and Ian Austen. But demand rapidly dried up as other consoles and personal computers took the lead with more powerful, flexible platforms and games. In the end, “millions of unsold games and consoles were buried in a New Mexico landfill in 1983. Warner Communications, which bought Atari in 1976 for $28 million, sold it in 1984 for no cash.”

The next generation of machines was dominated by Nintendo and Sega. But by the turn of the century, more new faces appeared and disrupted the second generation of market leaders. Sony (PlayStation) and Microsoft (Xbox) introduced powerful new consoles that continue to evolve to this day. Both consoles have already cycled through three iterations, each increasingly powerful and more functional. Sega dropped out of the console business and refocused on game development. Nintendo managed to survive with its innovative “Wii” system, but has fallen from its perch as king of the console market. Many also forget Apple’s failed run at the console business with its “Pippin” system in the late 1990s. Steve Jobs killed off the console when he returned to once again lead Apple in 1997. Ironically, just a decade later, with the rise of the iPhone and the Apple App Store, the company would emerge as a major player in the gaming market as smartphone gaming exploded.

Of course, PC gaming existed across these generations and handheld gaming devices and now smartphones are also providing competition to traditional consoles. Arcade games also existed both then and now. Thus, the video game market has always been broader than just home gaming consoles.

Nonetheless, at no time during the turbulent history of this sector have major consoles interoperated. The result has been a constant effort by major console developers to leap-frog the competition with increasingly innovative and powerful consoles and peripherals. Would Microsoft have developed the Kinect motion-sensing device if Nintendo had not previously developed their game-changing Wii motion controllers? It’s impossible to know but it would seem that non-interoperability had something to do with that beneficial development. Microsoft needed a game-changing peripheral of its own to meet the Nintendo challenge since Nintendo was not about to share its innovations with the competition. Meanwhile, Sony has developed its own motion-based “Move” system to compete Microsoft and Nintendo.

This is a highly dynamic marketplace at work. Could policymakers have determined that 3 major non-interoperable home consoles would have produced so much innovation? Would they have judged that to be too much or too little competition?  Would they have been able to foresee or help bring about the disruptive competition from portable gaming devices or smartphones? What sort of interop regulation would have made that happen?

As Palfrey and Gasser suggest in their book, there really “is no single form or optimal amount of interoperability that will suit every circumstance.” The video game case study seems to prove that. Yet, their framework leaves the door open a bit wider for state meddling to determine “optimal interop.” I have little faith that state planners could have given us a more innovative video game marketplace through interop nudging. And I also worry that if the door had been open for regulators at the FCC or elsewhere to influence interoperability decisions, it might have also opened to the door to content regulation since many lawmakers have long had an appetite for video game censorship.

Smartphones

The mobile phone handset and operating system marketplace has undergone continuous change over the past 15 years and is still evolving rapidly. There are some interoperable elements, such as the ability to make connecting calls and send texts and IMs. But other parts of the smartphone ecosystem are not interoperable, such as underlying operating systems or apps and app stores.

In the midst of this mixed system of interoperable and non-interoperable elements, innovation and cut-throat competition have flourished.

When cellular telephone service first started taking off in the mid-1990s, handsets and mobile operating systems were essentially one in the same, and Nokia and Motorola dominated the sector with fairly rudimentary devices. The era of personal digital assistants (PDAs) dawned during this period, but mostly saw a series of overhyped devices, including Apple’s “Newton,” that failed to catch on. In the early 2000s, however, a host of new players and devices entered the market, many of which are still on the scene today, including LG, Sony, Samsung, Siemens, and HTC. Importantly, the sector began splitting into handsets versus operating systems (OS). Leading mobile OS makers have included: Microsoft, Palm, Symbian, BlackBerry (RIM), Apple, and Android (Google).

The sector continues to undergo rapid change and interoperability norms have evolved at the same time. Looking back, it’s hard to know whether increased interoperability would have helped or hurt the state of competition and innovation.

Consider Palm, Blackberry, and Microsoft which all limited interoperability with other systems in various ways. Palm smartphones were wildly popular for a brief time and brought many innovations to the marketplace, for example. Palm underwent many ownership and management changes, however, and rapidly faded from the scene.  After buying Palm in 2010, HP announced it would use its webOS platform in a variety of new products.  That effort failed, however, and HP instead announced it would transition webOS to an open source software development mode.

Similarly, RIM’s BlackBerry was thought to be the dominant smartphone device for a time, but it has recently been decimated. BlackBerry’s rollercoaster ride has left it “trying to avoid the hall of fallen giants” in the words of an early 2012 New York Times headline.  The company once commanded more than half of the American smartphone market but now has under 10 percent, and that number continues to fall.

Microsoft also had a huge lead in licensing its Windows Mobile OS to high-end smartphone handset makers until Apple and Android disrupted its business. It’s hard to believe now, but just a few years ago the idea of Apple or Google being serious contenders in the smartphone business was greeted with suspicion, even scorn by popular handset makers such as Nokia and Motorola. This serves as another classic example of those with a static snapshot mentality disregarding the potential for new entry and technological disruption. Just a few years later, Nokia’s profits and market share have plummeted and a struggling Motorola was purchased by Google. Meanwhile, again, Palm seems dead, BlackBerry is dying, and Microsoft is struggling to win back market share it has lost to Apple and Google in this arena.

It would seem logical to conclude that the ebbs and flows of interoperable and non-interoperable elements of the smartphone world have created a turbulent but vibrantly innovative sector. Has the lack of interoperable operating systems or apps and apps stores hurt smartphone consumers? It’s hard to see how. Mandating interoperability at either level could lead to an OS or app store monopoly, most likely for Apple if such a policy were pursued today.

While Apple has had great success and earned endless kudos for their slick, user-friendly innovations from consumers and tech wonks alike, some critics decry their proprietary business model and more “controlled” user experience. Apple tightly controls almost every level of production of its iPhone smartphone and iPad tablet. Interoperability with competing systems, standards, or technologies is limited in many ways. Is that bad? Some critics think so, suggesting that greater “openness” — presumably in the form of greater device or program interoperability — is needed. But so what? Consumers seem extremely happy with Apple devices. Moreover, well-heeled rivals like Google (Android) and Microsoft continue to innovate at a healthy clip and offer consumers a decidedly different user experience. As with video games consoles, non-interop has had some important dynamic effects and advantages for consumers. It’s hard to know what “optimal interoperability” would even look like in the modern smartphone marketplace and how it would be achieved, but it’s equally hard to believe that consumers would be significantly better off if regulators were trying to achieve it through top-down mandates on such a dynamic, fast-moving market.  [For more on this topic, see my 2011 book chapter, “The Case for Internet Optimism, Part 2 – Saving the Net From Its Supporters,” from the book, The Next Digital Decade.]

Case Study Summary & Analysis

These case studies suggest that defining “optimal interoperability” is a pipe dream. In some cases, consumers demanded a certain amount interoperability and they got it. But it seems equally obvious that they did not demand perfect interoperability in every case. Few consumers are tripping over their own feet in a mad rush to toss out their XBoxs or iPhones just because they are not perfectly interoperable. On the other hand, since the days of the old “walled garden” hell of AOL, CompuServe, Prodigy, and so on, it would seem that information technology markets are growing more “open” in other ways. You can’t completely lock-down a user’s online experience and expect to win their business over the long haul.

Palfrey and Gasser make that point quite nicely in the book:

Increasingly, though, businesses are seeing the merits of strategies based on openness. A growing number of businesses are pursuing models that incorporate interoperability as a core principle. More and more firms, especially in the information business, are shedding their proprietary approaches in favor of interoperability at multiple levels. The goal is not to be charitable to competitors or customers, of course, but to maximize returns over time by building an ecosystem with others that holds greater promise than the go-it-alone approach (p. 149).

Quite right, but let’s not pretend that any mass market information platforms or systems will ever be perfectly “open” or interoperable. There will always be some limitations on how such systems are used or shared. And that’s just fine once you embrace a more flexible theory of evolutionary interoperability.  Ongoing experiments will get us to a better place.

Conclusion: Let Interop Experiments Continue!

So, let me wrap up by restating my alternative theory of optimal interoperability as succinctly as possible: When in doubt, ongoing, bottom-up, dynamic experimentation will almost always yield better answers than arbitrary intervention and top-down planning. Again, that is not to say that all interoperability experiments will leave society better off in the short-term. Some interoperability experiments and resulting market norms or outcomes can create challenging dilemmas for individuals and institutions. There may be short-term spells of “market power,” for example, and some standards may get locked in longer than some of us think makes sense. If, however, we have faith in humans to solve problems with information and technology, then still more experimentation — not state intervention — is the answer. And that is especially true once you accept the fact that those seeking to intervene have very limited knowledge of all the relevant facts needed to even make wise decisions about the future course of technology markets or information systems.

Some will find my alternative theory of optimal interoperability no more satisfying than Palfrey and Gasser’s since they may find the experimental interop framework too inflexible when it comes to state action. Whereas the frustration with Palfrey and Gasser’s theory will likely flow from their failure to define a coherent standard for when intervention is warranted, my approach solves that problem by suggesting we should largely abandon the endeavor and instead let ongoing market experiments solve interop problems over time. For me, we would need to find ourselves in a veritable whole-world-is-about-to-go-to-hell sort of moment before I could go along with state intervention to tip the interop scales in one direction or another. And, generally speaking, this is exactly the sort of thing that antitrust laws are supposed to address after a clear showing of harm to consumer welfare. Stated differently, to the extent any state intervention to address interoperability can be justified, ex post antitrust remedies should almost always trump ex ante regulatory meddling.

This alternative vision of evolutionary, experimental interoperability will be rejected by those who believe the state has the ability to wisely intervene and nudge markets to achieve “optimal interoperability” through some sort of Goldilocks principle that can supposedly get it just right. For those of us who have doubts about the likelihood of such sagacious state action — especially for fast-paced information sectors — the benefits of ongoing marketplace experimentation far outweigh the costs of letting those experiments run their course.

Regardless, we should be thankful that John Palfrey and Urs Gasser have provided us with a book that so perfectly frames what should be a very interesting ongoing debate over these issues. I encourage everyone to pick up a copy of Interop so you can join us in this important discussion.

Additional Reading:

• the official book site
• buy the book on Amazon or Barnes & Noble
• Follow the authors on Twitter: @JPalfrey & @UGasser
• a video of their Harvard book launch follows:

I highly recommend this important new study on “Why Parents Help Their Children Lie to Facebook about Age: Unintended Consequences of the Children’s Online Privacy Protection Act” by danah boyd of New York University, Eszter Hargittai from Northwestern University, Jason Schultz from University of California, Berkeley, and John Palfrey from Harvard University. COPPA is a complicated and somewhat open-ended law and regulatory regime. COPPA requires that commercial operators of websites and services obtain “verifiable parental consent” before collecting, disclosing, or using “personal information” (name, contact inform­ation) of children under the age of 13 if either their website or service (or “portion thereof”) is “directed at children” or they have actual knowledge that they are collecting personal information from a child.

The new study, which surveyed over 1,000 parents of children between the ages of 10 and 14, reveals that, despite the best of intentions, COPPA is having many unintended costs and consequences:

Although many sites restrict access to children, our data show that many parents knowingly allow their children to lie about their age — in fact, often help them to do so — in order to gain access to age–restricted sites in violation of those sites’ ToS. This is especially true for general–audience social media sites and communication services such as Facebook, Gmail, and Skype, which allow children to connect with peers, classmates, and family members for educational, social, or familial reasons.

The authors conclude that “COPPA inadvertently undermines parents’ ability to make choices and protect their children’s data” and that their results “have significant implications for policy–makers, particularly in light of ongoing discussions surrounding COPPA and other age–based privacy laws.” Indeed, this paper could really shake up the debate over online kids’ privacy regulation. I will have more analysis of the paper in my weekly Forbes column this weekend.

Additional reading for COPPA background and current controversies: Berin Szoka & Adam Thierer, “COPPA 2.0: The New Battle over Privacy, Age Verification, Online Safety & Free Speech,” (May 21, 2009); and Adam Thierer, “Kids, Privacy, Free Speech & the Internet: Finding the Right Balance,” (August 12, 2011).

John Naughton, a professor at the Open University in the U.K. and a columnist for the U.K. Guardian, has a new essay out entitled “Only a Fool or Nicolas Sarkozy Would Go to War with Facebook.” I enjoyed it because it touches upon two interrelated concepts that I’ve spent years writing about: “moral panic” and “third-person effect hypothesis” (although Naughton doesn’t discuss the latter by name in his piece.) To recap, let’s define those terms:

“Moral Panic” / “Techno-Panic“: Christopher Ferguson, a professor at Texas A&M’s Department of Behavioral, Applied Sciences and Criminal Justice, offers the following definition: “A moral panic occurs when a segment of society believes that the behavior or moral choices of others within that society poses a significant risk to the society as a whole.” By extension, a “techno-panic” is simply a moral panic that centers around societal fears about a specific contemporary technology (or technological activity) instead of merely the content flowing over that technology or medium.

“Third-Person Effect Hypothesis“: First formulated by psychologist W. Phillips Davison in 1983, “this hypothesis predicts that people will tend to overestimate the influence that mass communications have on the attitudes and behavior of others. More specifically, individuals who are members of an audience that is exposed to a persuasive communication (whether or not this communication is intended to be persuasive) will expect the communication to have a greater effect on others than on themselves.” While originally formulated as an explanation for how people convinced themselves “media bias” existed where none was present, the third-person-effect hypothesis has provided an explanation for other phenomenon and forms of regulation, especially content censorship. Indeed, one of the most intriguing aspects about censorship efforts historically is that it is apparent that many censorship advocates desire regulation to protect others, not themselves, from what they perceive to be persuasive or harmful content. That is, many people imagine themselves immune from the supposedly ill effects of “objectionable” material, or even just persuasive communications or viewpoints they do not agree with, but they claim it will have a corrupting influence on others.

All my past essays about moral panics and third-person effect hypothesis can be found here. These theories are also frequently on display in the work of some of the “Internet pessimists” I have written about here, as well as in many bills and regulatory proposals floated by lawmakers. Which brings us back to the Naughton essay.

Naughton comments on French president Nicolas Sarkozy’s recent speech at the eG8 summit, which many regarded as an attack on the Internet and online freedoms. Naughton argues:

in a way, he was just acting as a mouthpiece for the political, judicial, commercial and security establishments which are becoming increasingly hysterical about the way the internet is upending their respective applecarts. In that sense, Sarky was echoing the fulminations of England’s lord chief justice that “technology is out of control”, by which he meant, as Peter Preston has pointed out, is beyond his control. Establishment panic about the net’s disruptiveness is matched by renewed outbreaks of an age-old neurosis – moral panic about the impact of new communications technology on young people. This was fuelled last week by a report that Facebook was going to allow children under the age of 13 to become members. US law currently insists that websites that collect information about users (as Facebook does) aren’t allowed to sign on anyone under the age of 13.

I think Naughton’s probably on to something here. I’m not quite sure Sarkozy’s speech fit the classic “moral panic” model, but I did sense a bit of third-person effect hypothesis at work in some of Sarkozy’s comments.  Naughton continues on to discuss the rising fears about social networking sites in particular and notes “the fixed conviction of the adult world that young people are being seduced, hoodwinked, fixated, dumbed down (insert favourite downside here) by Facebook and Twitter.”  To this concern Naughton rightly notes:

Much of the moral panic about social networking is a projection of adult fears. A neurosis, as Ken Tynan wisely observed, is a secret that you don’t know you’re keeping. Many teenagers do silly things online; what their parents forget is that they also did silly things in their youth.

Quite right. This is actually a very old story. From the waltz to rock and roll to rap music, from movies to comic books to video games, from radio and television to the Internet and social networking websites—every new media format or technology spawns a fresh debate about the potential negative effects it might have on kids. In each case, the adult generation forgets they, too, were once kids and somehow got through the trials and tribulations of the adolescent experience.

The late University of North Carolina journalism professor Margaret A. Blanchard once noted: “[P]arents and grandparents who lead the efforts to cleanse today’s society seem to forget that they survived alleged attacks on their morals by different media when they were children. Each generation’s adults either lose faith in the ability of their young people to do the same or they become convinced that the dangers facing the new generation are much more substantial than the ones they faced as children.” And Thomas Hine, author of The Rise and Fall of the American Teenager, argues that: “We seem to have moved, without skipping a beat, from blaming our parents for the ills of society to blaming our children. We want them to embody virtues we only rarely practice. We want them to eschew habits we’ve never managed to break.”

What is needed, as I argued in my old book on Parental Controls and Online Child Protection, is a measured and balanced approach to children’s exposure to media content and online interactions — whether the fear is objectionable content or privacy.  All-or-nothing extremes are not going to work. In particular, fear-mongering and “techno-panics” are never the proper response. “Fear, in many cases, is leading to overreaction, which in turn could give rise to greater problems as young people take detours around the roadblocks we think we are erecting,” argue John Palfrey and Urs Gasser, authors of the brilliant recent book, Born Digital: Understanding the First Generation of Digital Natives. What parents, guardians, and educators need to understand, they argue, “is that the traditional values and common sense that have served them well in the past will be relevant in this new world, too.”

That is good advice to parents and policymakers alike.

I’ve just had a new article published by the American Legislative Exchange Council (ALEC) in which I make the case against “techno-panics,” which refers to public and political crusades against the use of new media or technologies by the young. The article is entitled “Parents, Kids & Policymakers in the Digital Age: Safeguarding Against ‘Techno-Panics‘” and it appears in the July 2009 Inside ALEC newsletter.  This is something I have spent a lot of time writing about here in recent years (See 1, 2, 3, 4, 5) and I finally got around to putting it altogether in a concise essay here.  I have pasted the full text below. [And I just want to send a shout-out to my friend Anne Collier of Net Family News.org, whose work on this topic has been very influential on my thinking.]

“Parents, Kids & Policymakers in the Digital Age: Safeguarding Against ‘Techno-Panics‘” by Adam Thierer

A cursory review of the history of media and communications technologies reveals a reoccurring cycle of “techno-panics” — public and political crusades against the use of new media or technologies by the young.  From the waltz to rock-and-roll to rap music, from movies to comic books to video games, from radio and television to the Internet and social networking websites, every new media format or technology has spawned a fresh debate about the potential negative effects they might have on kids.

Inevitably, fueled by media sensationalism and various activist groups, these social and cultural debates quickly become political debates. Indeed, each of the media technologies or outlets mentioned above was either regulated or threatened with regulation at some point in its history. And the cycle continues today. During recent sessions of Congress, countless hearings were held and bills introduced on a wide variety of media and content-related issues. These proposals dealt with broadcast television and radio programming, cable and satellite television content, video games, the Internet, social networking sites, and much more.  State policymakers, especially state Attorneys General (AGs), have also joined in such crusades on occasion.  The recent push by AGs for mandatory age verification for all social networking sites is merely the latest example.

What is perhaps most ironic about these techno-panics is how quickly yesterday’s boogeyman becomes tomorrow’s accepted medium, even as the new villains replace old ones.  For example, the children of the 1950s and 60s were told that Elvis’s hip shakes and the rock-and-roll revolution would make them all the tools of the devil. They grew up fine and became parents themselves, but then promptly began demonizing rap music and video games in the ‘80s and ‘90s.  And now those aging Pac Man-era parents are worried sick about their kids being abducted by predators lurking on MySpace and Facebook. We shouldn’t be surprised if, a decade or two from now, today’s Internet generation will be decrying the dangers of virtual reality.

These techno-panics are almost always disproportionate to the real risk posed by new media and technology, which typically do not have the corrupting influence on youth that older generations fear.  Parents and public policymakers alike need to remember they were once kids, too, and managed to live through many of the same fears and concerns about media and popular culture. As the late University of North Carolina journalism professor Margaret A. Blanchard once noted: “[P]arents and grandparents who lead the efforts to cleanse today’s society seem to forget that they survived alleged attacks on their morals by different media when they were children. Each generation’s adults either lose faith in the ability of their young people to do the same or they become convinced that the dangers facing the new generation are much more substantial than the ones they faced as children.” And Thomas Hine, author of The Rise and Fall of the American Teenager, argues that: “We seem to have moved, without skipping a beat, from blaming our parents for the ills of society to blaming our children. We want them to embody virtues we only rarely practice. We want them to eschew habits we’ve never managed to break.”

The better response by both parents and policymakers is a measured and balanced approach to children’s exposure to media content and online interactions.  All-or-nothing extremes are never going to work.  In particular, techno-panics are hopelessly counter-productive. “Fear, in many cases, is leading to overreaction, which in turn could give rise to greater problems as young people take detours around the roadblocks we think we are erecting,” argue John Palfrey and Urs Gasser, authors of Born Digital: Understanding the First Generation of Digital Natives. What parents, educators, and policymakers need to understand, they argue, “is that the traditional values and common sense that have served them well in the past will be relevant in this new world, too.”

Most simply, we need to be willing to talk to our kids about the new technologies and cultural developments that shape their generation. When we as parents (or policymakers) do not fully comprehend or appreciate the new-fangled gadget in our kids’ pocket—or whatever they are playing, watching, or listening to on it—instead of engaging in demagoguery and driving a wedge between us and them, we should instead invite them to have a conversation with us about it.  Ask three simple questions to get that conversation started: “What is this new thing all about?”  “Tell me how you use it.”  “Why is it important to you?”  Once you’ve got them talking to you, good ‘ol fashion common sense and timeless parenting principles should kick in. “Do you understand why too much of this might be bad for you?” “Will you please come talk to me if you don’t understand something you’ve seen or heard?” And so on.

In sum, it’s about parental responsibility and rational, measured responses. The “techno-panic” mentality, by contrast, creates distrust and distance between our kids and us. As Anne Collier of Net Family News notes, techno-panics “cause fear, which interferes with parent-child communication, which in turn puts kids at greater risk.”

Parents and policymakers need to engage kids in an ongoing conversation about the technologies du jour—even when we don’t fully understand or appreciate them.

————— [printable Scribd version follows] —————

“Against Techno-Panics” by Adam Thierer, PFF (July 2009 – Inside ALEC) http://d.scribd.com/ScribdViewer.swf?document_id=17392730&access_key=key-2gdkqylyeu5h376buyyi&page=1&version=1&viewMode=

In an earlier post, I mentioned an important new online child safety task force report that has just been released from the “Point Smart. Click Safe.” Blue Ribbon Working Group. It’s a great report and I encourage you to read the whole thing. It was my great pleasure to serve on this task force, and as we started finalizing our conclusions and recommendations, I started thinking about how much of what we were finding and recommending was consistent with what past online safety task forces had also concluded.

By way of background, over the past decade, five major online safety task forces or blue ribbon commissions have been convened to study online safety issues. Two of these task forces were convened in the United States and issued reports in 2000 (“COPA Commission”) and 2002 (“Thornburgh Commission“). Another was commissioned by the British government in 2007 and issued in a major report in March 2008 (“Byron Review“). Finally, two additional online safety task forces were formed in the U.S. in 2008 and concluded their work, respectively, in January (“Internet Safety Technical Task Force“) and July (“Point Smart. Click Safe.“) of 2009. [And yet another task force — the Online Safety Technology Working Group — was recently formed and has now gotten underway.]

In a new PFF white paper, ” Five Online Safety Task Forces Agree: Education, Empowerment & Self-Regulation Are the Answer,” I walk through a chronological summary of each of these past task forces [click on covers of each report below to read them in their entirety] and highlight some of the similar themes and recommendations from them.

Altogether, these five task forces heard from hundreds of experts and produced thousands of pages of testimony and reports on a wide variety of issues related to online child safety. While each of these task forces had different origins and unique membership, what is striking about them is the general unanimity of their conclusions. Among the common themes or recommendations of these five task forces:

• Education is the primary solution to most online child safety concerns. These task forces consistently stressed the importance of media literacy, awareness-building efforts, public service announcements, targeted intervention techniques, and better mentoring and parenting strategies.
• There is no single “silver-bullet” solution or technological “quick-fix” to child safety concerns. That is especially the case in light of the rapid pace of change in the digital world.
• Empowering parents and guardians with a diverse array of tools, however, can help families, caretakers, and schools to exercise more control over online content and communications.
• Technological tools and parental controls are most effective as part of a “layered” approach to child safety that views them as one of many strategies or solutions.
• The best technical control measures are those that work in tandem with educational strategies and approaches to better guide and mentor children to make wise choices. Thus, technical solutions can supplement, but can never supplant, the educational and mentoring role.
• Industry should formulate best practices and self-regulatory systems to empower users with more information and tools so they can make appropriate decisions for themselves and their families. And those best practices, which often take the form of an industry code of conduct or default control settings, should constantly be refined to take into account new social concerns, cultural norms, and technological developments.
• Government should avoid inflexible, top-down technological mandates. Instead, policymakers should focus on encouraging collaborative, multifaceted, multi-stakeholder initiatives and approaches to enhance online safety. Additional resources for education and awareness-building efforts are also crucial. Finally, governments should ensure appropriate penalties are in place to punish serious crimes against children and also make sure law enforcement agencies have adequate resources to police crimes and punish wrong-doers.

The consistency of these findings from those five previous task forces is important and it should guide future discussions among policymakers, the press, and the general public regarding online child safety.  As I note in the paper, the findings are particularly relevant today since Congress and the Obama Administration — including 3 federal agencies (NTIA, FCC, & FTC) are actively studying these issues. So, in light of all that, I hope this short paper can shed some light on the collective wisdom of the past task forces. While more study of online child safety issues is always welcome — including additional task forces or working groups if policymakers deem them necessary — thanks to the work of these five task forces, we now have better vision of what is needed to address online safety concerns.

Five Online Safety Task Forces Agree [PFF – Adam Thierer] http://d.scribd.com/ScribdViewer.swf?document_id=17181137&access_key=key-z6cxfgrjkqaqtxbix&page=1&version=1&viewMode=

If you’re a cyberlaw geek or tech policy wonk who needs to keep close tabs on Sec. 230 developments, here’s a terrific resource from the Citizen Media Law Project up at the Harvard Berkman Center.  The site offers a wealth of background info, including legislative history, all the relevant case law surrounding 230, and breaking news on this front.  Just a phenomenal resource; a big THANK YOU! to the folks at CMLP who put this together.

If you’re interested in these issues, you might also want to check out this friendly debate that Harvard’s John Palfrey and I engaged in over at Ars recently as well as my essay on how Sec. 230 has spawned a “utopia of utopias” online.

Today, the U.S. Department of Commerce’s National Telecommunications and Information Administration (NTIA) announced the members of the new Online Safety and Technology Working Group (OSTWG).  I am honored to be among those chosen to participate in this new task force and I look forward to continuing the work started last year with the Harvard Berkman Center’s Internet Safety Technical Task Force (ISTTF), which I also served on.   I was very proud of the work done by the ISTTF and the impressive final report that Prof. John Palfrey crafted to reflect our findings.  I am eager to investigate these issues further and take a look at the latest research and technologies that can help us better understand how to protect our kids online while also protecting the free speech and privacy rights of Netizens.

The new NTIA working group, which was established under the “Protecting Children in the 21st Century Act,” will report to the Assistant Secretary of Commerce for Communications and Information on industry-implemented online child safety tools and efforts. Within a year of convening its first meeting, the group will submit a report of its findings and make recommendations on how to increase online safety measures.

Below the fold I have listed the complete roster of OSTWG task force members.  I very much looking forward to working with this outstanding group.  And I’m happy to report that my TLF blogging colleague Braden Cox will be joining me on this task force!

Ms. Parry Aftab, WiredSafety Ms. Elizabeth Banker, Yahoo! Inc. Mr. Christopher Bubb, AOL Ms. Anne Collier, Net Family News, Inc./ConnectSafely.org Mr. Braden Cox, NetChoice Coalition Ms. Caroline Curtin, Microsoft Mr. Brian Cute, Afilias U.S.A. Mr. Jeremy Geigle, Arizona Family Council Ms. Marsali Hancock, Internet Keep Safe Coalition Mr. Michael Kaiser, National Cyber Security Alliance Mr. Christopher Kelly, Facebook Mr. Brian Knapp, Loopt, Inc. Mr. Timothy Lordan, Internet Education Foundation Mr. Larry Magid, SafeKids.com/ConnectSafely.org Mr. Brian Markwalter, Consumer Electronics Association Mr. Michael McKeehan, Verizon Communications, Inc. Dr. Samuel McQuade, III, Rochester Institute of Technology Ms. Orit Michiel, Motion Picture Association of America, Inc. Mr. John Morris, Center for Democracy & Technology Mr. Jonathon Nevett, Network Solutions, LLC Mr. Hemanshu Nigam, MySpace/Fox Interactive Media Ms. Jill Nissen, Ning, Inc. Mr. Jay Opperman, Comcast Corporation Mr. Kevin Rupy, United States Telecom Association Mr. John Shehan, National Center for Missing & Exploited Children Mr. K. Dane Snowden, CTIA – the Wireless Association Mr. Adam Thierer, Progress & Freedom Foundation Ms. Patricia Vance, Entertainment Software Rating Board Mr. Ralph Yarro, The CP80 Foundation

• denotes co-chairs of the task force

Ars Technica has just posted the transcript of a friendly debate I recently engaged in with Harvard University law professor John Palfrey about the future of Section 230 of the Communications Decency Act and online liability more generally.  Our debate got started last fall, shortly after I penned a favorable review of John’s excellent new book (with Urs Gasser), Born Digital: Understanding the First Generation of Digital Natives.  [Listen to my podcast with John about it here.]  Although I enjoyed John’s book, I also raised some concerns about his call in the book to reopen and revise Section 230, specifically to address child safety concerns.  At the time, John and I were working together on the Berkman Center’s “Internet Safety Technical Task Force” and we decided to begin an e-mail exchange about the future of 230 and online liability norms more generally.  The result was the debate that Ars has just published.

In our exchange, I begin by asking John to more fully develop some statements and proposals he sets forth in Born Digital.  Specifically, he and co-author Urs Gasser argue that: “The scope of the immunity the CDA provides for online service providers is too broad” and that the law “should not preclude parents from bringing a claim of negligence against [a social networking site] for failing to protect the safety of its users.” They also suggest that “There is no reason why a social network should be protected from liability related to the safety of young people simply because its business operates online.” Specifically, the call for “strengthening private causes of action by clarifying that tort claims may be brought against online service providers when safety is at stake,” although they do not define those instances.

Using those proposals as a launching point for our discussion, I challenge John as follows:

I’m troubled by your proposals because I believe Section 230 has been crucial to the success of the Internet and the robust marketplace of online freedom of speech and expression. In many ways — whether intentional or not — Section 230 was the legal cornerstone that gave rise to many of the online freedoms we enjoy today. I fear that the proposal you have set forth could reverse that. It could lead to crushing liability for many online operators-and not just giants like MySpace or Facebook-that might not be able to absorb the litigation costs. Could you elaborate a bit more about your proposal and explain why you think the time has come to alter Section 230 and online liability norms?

And John does and then we go back-and-forth from there.  Again, you can read the whole exchange over at Ars.

It was a great pleasure to engage in this exchange with Prof. Palfrey and I look forward to what others have to say in response to our debate.  I am working on a longer paper looking broadly at the rising threats to Sec. 230 and the increasing calls for expanded online liability and middleman deputization.  I will use whatever feedback I get from this exchange to refine my paper and proposals.

On this episode of “Tech Policy Weekly,” we’re launching a new format called “Tech Book Corner” that will feature occasional conversations with the authors of important new books about technology policy and the other issues that we debate frequently at the Tech Liberation Front blog.

On this debut episode of Book Corner, we are joined by John Palfrey, a professor of law at Harvard University and the co-director of the Berkman Center for Internet & Society at Harvard. Along with his Berkman Center colleague Urs Gasser, Prof. Palfrey has recently co-authored Born Digital: Understanding the First Generation of Digital Natives, which was published last summer by Basic Books and which you can find out more information about at www.borndigitalbook.com. [Incidentally, I reviewed Born Digital here last October and I also named it one of the most important technology policy books of 2008.]

In our discussion, Prof. Palfrey explains who exactly counts as a “digital native” and tells us why he decided to write a book about them. He discusses why he believes that there has been some overreaction by older generations to fears about this Digital Generation and he argues that we need “to separate what we need to worry about from what’s not so scary” and “what we ought to resist from what we ought to embrace.” He then outlines how we should think about these issues and concerns going forward, and he stresses the importance of “balancing caution with encouragement” as we do so. Finally, he then applies that framework to three specific issues: privacy, child safety, and copyright.

It’s an interesting conversation and you can begin listening to it immediately by downloading the MP3 file here or by just clicking the play button below!

[display_podcast]

Just wanted draw everyone’s attention to a couple of great podcasts about online safety issues that include comments from members of the Internet Safety Technical Task Force (ISTTF). As I mentioned a few weeks ago, the ISTTF project and final report represent a major milestone in the discussion about online safety in America, and I was honored to serve as a member of this task force.

This in-depth “Radio Berkman” podcast featuring ISTTF director John Palfrey and co-director Dena Sacco is a really excellent (but lengthy!) overview of the ISTTF’s word. Here’s a shorter podcast that Prof. Palfrey did with Larry Magid of CNet. And I also recommend this excellent NPR “On the Media” podcast featuring my friend Stephen Balkam of the Family Online Safety Institute (FOSI).

For those interested, down below you will find a running list I have been keeping of coverage of the ISTTF. (I will try to keep updating this list here).

Articles and podcasts about the ISTTF:

• ISTTF director John Palfrey discusses the report on this short podcast with Larry Magid as well as this longer one from the Berkman Center
• ISTTF co-director danah boyd comments on the report on her blog
• ISTTF member Larry Magid of ConnectSafely.org: “Net Threat to Minors Less Than Feared,” CNet News.com
• ISTTF member Anne Collier of Net Family News: “Key Crossroads for Net Safety“
• ISTTF member Stephen Balkam of FOSI featured on an NPR podcast about our work
• ISTTF member John Morris of CDT: “Deconstructing Reaction to Net Safety Task Force Report“
• ISTTF member Marsali Hancock, President of iKeepSafe blog essay about the task force
• AGs respond to report in interview with Emily Steel of the Wall Street Journal: “The Case for Age Verification“
• New York Times article by Brad Stone: “Report Calls Online Threats to Children Overblown“
• Wall Street Journal article by Emily Steel: “No Easy Answer for Protecting Kids Online“
• Associated Press story by Anick Jesdanun: “Panel: Technology Alone Can’t Protect Kids Online“
• Chronicle of Higher Education Wired Campus blog entry by Tracy Mitrano, “Report Weighs the Benefits and Risks of Social Networks,”
• PC World article by Jaikumar Vijayan: “Study Accused of Exaggerating Kids Online Safety“
• PC World blog post by Jaikumar Vijayan: “Are Internet Child Safety Concerns Overblown or Understated?”

Background info:

• an old blog entry of mine about the formation of the task force
• an old paper of mine about the agreement between MySpace and AGs that led to the formation of the ISTTF
• an essay of mine from the ISTTF’s mid-point: “Age Verification Debate Continues; Schools Now at Center of Discussion“
• my big white paper on the dangers of mandatory age verification
• my book: “Parental Controls and Online Child Protection: A Survey of Tools and Methods”
• my final ISTTF statement

The Internet Safety Technical Task Force (ISTTF), which was formed a year ago to study online safety concerns and technologies, today issued its final report to the U.S. Attorneys General who authorized its creation. It was a great honor for me to serve as a member of the ISTTF and I believe this Task Force and its report represent a major step forward in the discussion about online child safety in this country.

The ISTTF was very ably chaired by John Palfrey, co-director of Harvard University’s Berkman Center for Internet & Society, and I just want to express my profound thanks here to John and his team at Harvard for doing a great job herding cats and overseeing a very challenging process. I encourage everyone to examine the full ISTTF report and all the submissions, presentations, and academic literature that we collected. [It’s all here.] It was a comprehensive undertaking that left no stone unturned.

Importantly, the ISTTF convened (1) a Research Advisory Board (RAB),which brought together some of the best and brightest academic researchers in the field of child safety and child development and (2) a Technical Advisory Board (TAB), which included some of America’s leading technologists, who reviewed child safety technologies submitted to the ISTTF. I strongly recommend you closely examine the RAB literature review and TAB assessment of technologies because those reports provide very detailed assessments of the issues. They both represent amazing achievements in their respective arenas.

There are a couple of key takeaways from the ISTTF’s research and final 278-page report that I want to highlight here. Most importantly, like past blue-ribbon commissions that have studied this issue, the ISTTF has generally concluded there is no silver-bullet technical solution to online child safety concerns. The better way forward is a “layered approach” to online child protection. Here’s how we put it on page 6 of the final report:

The Task Force remains optimistic about the development of technologies to enhance protections for minors online and to support institutions and individuals involved in protecting minors, but cautions against overreliance on technology in isolation or on a single technological approach. Technology can play a helpful role, but there is no one technological solution or specific combination of technological solutions to the problem of online safety for minors. Instead, a combination of technologies, in concert with parental oversight, education, social services, law enforcement, and sound policies by social network sites and service providers may assist in addressing specific problems that minors face online. All stakeholders must continue to work in a cooperative and collaborative manner, sharing information and ideas to achieve the common goal of making the Internet as safe as possible for minors.

In sum, education and empowerment are the real keys to keeping kids safer online. We all need to work harder to mentor our children and help them develop the skills and good old fashion common sense to make smart decisions online. Technical tools can supplement — but can never supplant — education, parental guidance, and better mentoring.

Still, this was a task force that primarily came about after state attorneys general (AGs) had been incessantly pressuring social networking sites like MySpace and Facebook to adopt age verification technologies as a solution to online child safety concerns. Specifically, fears about online predators — driven largely by the moral panic whipped up by shows like NBC’s “To Catch a Predator” — prompted calls for mandatory age verification for social networking sites.

So, what did the final ISTTF report have to say about mandatory age verification. Answer: Probably not as much as the AGs were hoping for, and what we did say they may not like to hear.

First, the ISTTF’s Research Advisory Board conclusively proved the primary online safety issue today is peer-on-peer cyber-harassment, not adult predation. Mandatory age verification would do nothing to stop cyberbullying. Indeed, the lack of adult supervision may even exacerbate the problem.

Second, after reviewing various age verification solutions, the ISTTF’s Technical Advisory Board concluded:

Age verification and identity authentication technologies are appealing in concept but challenged in terms of effectiveness. Any system that relies on remote verification of information has potential for inaccuracies. For example, on the user side, it is never certain that the person attempting to verify an identity is using their own actual identity or someone else’s. Any system that relies on public records has a better likelihood of accurately verifying an adult than a minor due to extant records. Any system that focuses on third-party in-person verification would require significant political backing and social acceptance. Additionally, any central repository of this type of personal information would raise significant privacy concerns and security issues.

As a result, our final report concluded that:

The Task Force does not believe that the Attorneys General should endorse any one technology or set of technologies to protect minors online. Instead, the Attorneys General should continue to work collaboratively with all stakeholders in pursuing a multifaceted approach to enhance safety for minors online.

Then, on pages 28-31, we go into more detail about age verification, finding that:

[Age verification] approaches are less effective in the child safety context — in other words, at creating safe environments for minors — than in the context of completing financial transactions or regulating purchases, especially to the extent that identity authentication and age verification focus solely upon adults. The reasons for this include the fact that in the commercial and financial contexts, an adult typically wants to verify his or her identity correctly in order to purchase a product or get access to records. Moreover, when adults purchase regulated items (such as alcohol or tobacco) online, in some cases a second form of age verification occurs when the item is delivered.

The identity authentication and age verification solutions that authenticate or verify only adults could be and are already sometimes used to reduce minors’ access to adult-only sites. Because they do not authenticate or verify minors, however, they cannot be used to create environments for minors that require authentication or verification prior to access. To the extent that an adult nonetheless uses his or her own verifiable information when accessing an environment intended only for minors, these technologies could enhance the ability of Internet service providers and social network sites to exclude that adult. Of course, it seems unlikely that an adult with nefarious purposes would proceed in this manner. Thus, while these types of identity authentication and age verification technologies may be helpful for other purposes, they do not appear to offer substantial help in protecting minors from sexual solicitation.

And there’s far more detail following this passage from the final report, so please read that section for additional discussion.

Again, some AGs may not like to hear all this but these were near-consensus findings of the Task Force. And, if anything, the Task Force probably did not far enough to show why mandatory age verification will not work and how age verification will actually make kids less safe online. In my final statement to the Task Force, this is what I spent my time focusing on. I outlined the dangers of age verification as well as 10 questions about age verification that the AGs must answer if they persist in this pursuit of a technological Holy Grail. I have embedded my entire expanded final statement down below as a Scribd document, but here are the key reasons I believe mandatory age verification represents a dangerous solution to online child safety concerns:

Again, although the Task Force didn’t go quite as far as I would have liked in terms of making clear the dangers associated with mandatory age verification, I think our final report reflects the general skepticism among Task Force members about taking that path or relying too heavily on any single, silver-bullet technical approach to online child safety concerns. Again, this is real progress; a sensible step forward in the discussion about keeping our kids safe online.

I hope policymakers will take a close look at our conclusions and recommendations and take them seriously. We need to stop wasting so much time searching for silver bullets and start getting more serious about how to better mentor our kids so that they can be good — and safe — digital citizens. Education, not regulation, is the key.

Below I have linked to some background essays about the Internet Safety Technical Task Force as well as additional thoughts by fellow task force members or reporters. I’ll add to it as I see new things in coming days.

Additional thoughts / articles about the ISTTF:

• ISTTF director John Palfrey discusses the report on this short podcast with Larry Magid as well as this longer one from the Berkman Center
• ISTTF co-director danah boyd comments on the report on her blog
• ISTTF member Larry Magid of ConnectSafely.org: “Net Threat to Minors Less Than Feared,” CNet News.com
• ISTTF member Anne Collier of Net Family News: “Key Crossroads for Net Safety“
• ISTTF member Stephen Balkam of FOSI featured on an NPR podcast about our work
• ISTTF member John Morris of CDT: “Deconstructing Reaction to Net Safety Task Force Report“
• ISTTF member Marsali Hancock, President of iKeepSafe blog essay about the task force
• AGs respond to report in interview with Emily Steel of the Wall Street Journal: “The Case for Age Verification“
• New York Times article by Brad Stone: “Report Calls Online Threats to Children Overblown“
• Wall Street Journal article by Emily Steel: “No Easy Answer for Protecting Kids Online“
• Associated Press story by Anick Jesdanun: “Panel: Technology Alone Can’t Protect Kids Online“
• Chronicle of Higher Education Wired Campus blog entry by Tracy Mitrano, “Report Weighs the Benefits and Risks of Social Networks,”
• PC World article by Jaikumar Vijayan: “Study Accused of Exaggerating Kids Online Safety“
• PC World blog post by Jaikumar Vijayan: “Are Internet Child Safety Concerns Overblown or Understated?”

Background info:

• an old blog entry of mine about the formation of the task force
• an old paper of mine about the agreement between MySpace and AGs that led to the formation of the ISTTF
• an essay of mine from the ISTTF’s mid-point: “Age Verification Debate Continues; Schools Now at Center of Discussion“
• my big white paper on the dangers of mandatory age verification
• my book: “Parental Controls and Online Child Protection: A Survey of Tools and Methods”
• my final ISTTF statement, which is also embedded below as a Scribd document…

It’s been a big year for tech policy books. Several important titles were released in 2008 that offer interesting perspectives about the future of the Internet and the impact digital technologies are having on our lives, culture, and economy. Back in September, I compared some of the most popular technology policy books of the past five years and tried to group them into two camps: “Internet optimists” vs. “Internet pessimists.” That post generated a great deal of discussion and I plan on expanding it into a longer article soon. In this post, however, I will merely list what I regard as the most important technology policy books of the past year.

What qualifies as an “important” tech policy book? Basically, it’s a title that many people in this field are currently discussing and that we will likely be talking about for many years to come. I want to make it clear, however, that merely because a book appears on this list it does not necessarily mean I agree with everything said in it. In fact, I found much with which to disagree in my picks for the two most important books of 2008, as well as many of the other books on the list. [Moreover, after reading all these books, I am more convinced than ever that libertarians are badly losing the intellectual battle of ideas over Internet issues and digital technology policy. There’s just very few people defending a “Hands-Off-the-Net” approach anymore. But that’s a subject for another day!]

Another caveat: Narrowly focused titles lose a few points on my list. For example, as was the case in past years, a number of important IP-related books have come out this year. If a book deals exclusively with copyright or patent issues, it does not exactly qualify as the same sort of “tech policy book” as other titles found on this list since it is a narrow exploration of just one set of issues that have a bearing on digital technology policy. The same could be said of a book that deals exclusively with privacy policy, like Solove’s Understanding Privacy. It’s an important book with implications for the future of tech policy, but I demoted it a bit because of its narrow focus.

With those caveats in mind, here are my Top 10 Most Important Tech Policy Books of 2008 (and please let me know about your picks for book of the year):

(1) Jonathan Zittrain ­– The Future of the Internet, and How to Stop It

Zittrain’s book is the most important of 2008 because it’s the one we will still be talking the most about a decade from now. However, I think we’ll be talking about how wrong his thesis was that the “generative” Internet and general purpose PCs are dying.  Indeed, I’ve been quite critical of the thesis that Jonathan sets forth in his book, and I have discussed my reservations in a lengthy book review and a series of follow-up essays here and elsewhere. (Part 1, 2, 3, 4, 5).  We’ve also debated his book on the an NPR-Boston [audio is here] and we debated in person at New America Foundation in early November [video is here].

Despite my serious reservations, Jonathan’s book is important, well-written, and absolutely deserves your attention if you care about the future of technology policy.

(2) Nick Carr – The Big Switch: Rewiring the World, From Edison to Google

Part 1 of Nick Carr’s book is an eloquent early history of cloud computing, nicely comparing it to previous technological revolutions. It’s beautifully done. In Part 2 of the book, however, Carr turns sour and argues that the impact of cloud computing will be quite miserable for our economy, culture, and society. The Big Switch probably makes the best case than any Net pessimist has been penned thus far, and for that reason alone it deserves your attention. Ultimately, however, I found his case unconvincing.

You can find my complete review of Carr’s book here.

(3) John Palfrey and Urs Gasser – Born Digital: Understanding the First Generation of Digital Natives

Palfrey and Gasser’s fine early history of this generation of “Digital Natives” serves as a starting point for any conversation about how to mentor and interact with the children of the Web. It’s a comprehensive and very even-handed discussion about a variety of concerns or Internet pathologies, including: online safety, personal privacy, copyright piracy, offensive content, classroom learning, and much more. Despite a few nitpicks, I really enjoyed this book and highly recommend it. Importantly, it is a very accessible book that even the non-tech layman can pick up and appreciate. [Note: Don Tapscott’s Grown Up Digital: How the Net Generation is Changing Your World, shares a lot in common with Born Digital, but Tapscott doesn’t spend much time on policy issues and that’s why his book isn’t on my list.]

My review of Palfrey and Gasser’s Born Digital is here. [Update Feb 2009: I also hosted a podcast about the book featuring Prof. Palfrey.]

(4) Clay Shirky – Here Comes Everybody: The Power of Organizing without Organizations

While Nick Carr [see #2 above] and Lee Siegel [see #5 below] are leading the “techno-pessimist” parade this year, Clay Shirky is this year’s leading cheerleader for “cyber-optimism.” Shirky argues that the falling costs and growing ease of digital distribution are making it increasingly easy for individuals to engage in group-forming and collective action endeavors. The resulting rise of “mass amateurization” poses a significant challenge to old media operations and traditional business models and practices. In this sense, Shirky is building on many of the themes and arguments previously set forth in books like The Wealth of Networks (Benkler), Wikinomics (Tapscott and Williams), and Convergence Culture (Jenkins). If you’ve already read those titles, you’ll find a great deal of familiar thinking here.

I never got around to putting together a full review of Here Comes Everybody, but Tim Lee had a nice write-up over at Ars earlier this year.

(5) Lee Siegel – Against the Machine: Being Human in the Age of the Electronic Mob

Siegal is this year’s Andrew Keen; a cyber-sourpuss who thinks the whole world is going to hell and that the Internet is to blame. Like Keen’s Cult of the Amateur, Siegel’s Against the Machine is an anti-Web 2.0 screed that finds no redeeming qualities about the Internet or user-generated content.  In particular, Wikipedia and amateur production are blasted as being detrimental to professional media.

Both Siegel and Keen are essentially channeling the ghost of the late Neil Postman, whose 1992 book Technopoly remains the classic statement of techno-pessimism. They prove worthy disciples as they preach the Gospel According to Chicken Little and push for a neo-Luddite revival. But Siegel’s techno-pessimism is boundless and his hatred for all things digital is truly breathtaking. For that reason, however, his book deserves attention.

My lengthy critique of Siegel’s book can be found here.

(6) Ronald J. Deibert, John G. Palfrey, Rafal Rohozinski, and Jonathan Zittrain (eds.) – Access Denied: The Practice and Policy of Global Internet Filtering

This is essential reading for anyone studying the methods governments are using to stifle online expression. The contributors provide a regional and country-by-country overview of the global state of online speech controls and discuss the long-term ramifications of increasing government filtering of online networks. Even if you don’t read the whole thing, this is a must-have title for your bookshelf since there is no other resource out there like this. And it should be required reading in every cyberlaw class in America. [Note: It also contains a very helpful chapter on the mechanics of Net filtering.]  Very highly recommended.

(7) Hal Abelson, Ken Ledeen, and Harry Lewis – Blown to Bits: Your Life, Liberty, and Happiness After the Digital Explosion

Think of this book as “Internet Policy for the Educated Layman.” Abelson, Ledeen, and Lewis survey a broad swath of tech policy territory — privacy, search, encryption, free speech, copyright, spectrum policy — and provide the reader with a nice history and technology primer on each topic. Like Palfrey and Gasser’s Born Digital [see #3 above], Blown to Bits is very accessible and each chapter contains a great deal of useful information to bring you up to speed on the hottest tech policy debates under the sun. Recommended.

My review of Blown to Bits can be found here.

(8) Lawrence Lessig – Remix: Making Art and Commerce Thrive in the Hybrid Economy

Remix treads a lot of ground already covered in Lessig’s other books and essays (perhaps it should have been called “Rehash”), but it more fully develops his thinking on the legal treatment of derivative works. Actually, in some ways (especially in the second half of the book), it’s more of a restatement of much of what is found in Benkler’s Wealth of Networks, albeit in a far less verbose fashion. Regardless, Prof. Lessig has attained rock-star status in tech policy circles and the release of each of his new books or papers becomes a bit of an event. Remix has been no different. It has already attracted a great deal of attention and deserves to be on this list for that reason alone. But if you have read his previous work, you’ll already be familiar with much of what you find in Remix.

Generally speaking, I thought Prof. Lessig made a good case regarding the benefits of remix culture and why copyright law should leave breathing room for the various derivative works of amateur creators. But he too often blurs remix culture with “ripoff culture” (i.e., those who aren’t out to create anything new but instead just take something without paying a penny for it). To solve that latter problem, he endorses a “simple” blanket licensing scheme for the Internet. In this essay, I addressed why blanket online licensing would be anything but simple.

(9) James Bessen and Michael J. Meurer – Patent Failure: How Judges, Bureaucrats, and Lawyers Put Innovators at Risk

Bessen and Meurer argue that America’s patent system is in trouble because “it fail[s] to provide clear and efficient notice of the boundaries of the rights granted.” Patent litigation has exploded, they say, and the costs of the system now outweigh the benefits. Generally speaking, with the exception of the chemical and pharmaceutical industries, Bessen and Meurer don’t feel the patent system does a lot of good.”[I]t seems unlikely that patents today are an effective policy instrument to encourage innovation overall,” they conclude. They detail several reforms to help improve notice and to “make patents work as property” again the way they claim they once did.

Although the authors deal with patents broadly, the book has great relevance to digital technology policy because of their discussion of business method patents and software patents. (Incidentally, that chapter from the book is available online). They argue that software technology is especially prone to problems of “abstraction” and obviousness. As a result, software patenting has been a major contributor to the litigation explosion we have seen in recent years.

Although I agree with their case against software patents, I remain unconvinced that the patent system is failing as badly as Bessen and Meurer claim. Nonetheless, they present a powerful case that deserves to be taken seriously. Patent Failure will have an enormous impact on these debates going forward.

For more opinions on the book… Tim Lee posted a favorable review of Patent Failure over at Ars this summer. And, back in March, there was a lively discussion about the book over at Patently-O. Finally, at last year’s PFF “Aspen Summit,” Michael Meurer debated these issues with some of America’s leading patent law experts. Bronwyn H. Hall, Professor of Economics at Cal-Berkeley, challenges his findings. The video of that panel is here.

(10) Daniel Solove – Understanding Privacy

Daniel Solove’s book — and his approach to classifying and dealing with privacy problems — will have a profound impact on all future privacy debates. In that sense, it is a vital text; a must read for all who follow, or engage in, privacy debates.  On the other hand, Solove’s claim that he can construct a new paradigm based strictly on a pragmatic, utilitarian, “?problem-solving” approach, is ultimately a failure. There is just no getting around the fact that, at some point, you are going to have to provide a more robust theory of rights or justice to explain why one right trumps another. I elaborate in this lengthy critique of Solove’s Understanding Privacy.

Honorable Mentions: Here are a couple of titles that I couldn’t fit on my list but that you might want to also consider reading: Neil Netanel – Copyright’s Paradox; Matt Mason – The Pirate’s Dilemma: How Youth Culture Is Reinventing Capitalism; David Friedman – Future Imperfect: Technology and Freedom in an Uncertain World; Cory Doctorow — Content; and Don Tapscott — Grown Up Digital: How the Net Generation is Changing Your World.

Please let me know if there are other titles I have overlooked, and let me know your opinion about the best technology policy book(s) of 2008 by voting in our poll and commenting more down below.

[poll id=”3″]

I’ve spent a lot of time in recent years trying to debunk various myths about online child safety or at least put those risks into perspective. Too often, press reports and public policy initiatives are being driven by myths, irrational fears, or unjustified “moral panics.”  Luckily, the New York Times reports that there’s another study out this week that helps us see things in a more level-headed light. This new MacArthur Foundation report is entitled Living and Learning with New Media: Summary of Findings from the Digital Youth Project. This white paper is a summary of three years of research on kids’ informal learning with digital media. The survey incorporates the insights from 800 youth and young adults and over 5000 hours of online observations. The information will eventually be contained in a book from MIT Press (“Hanging Out, Messing Around, Geeking Out: Living and Learning with New Media.”)

From the summary of the study on the MacArthur website:

“It might surprise parents to learn that it is not a waste of time for their teens to hang out online,” said Mizuko Ito, University of California, Irvine researcher and the report’s lead author. “There are myths about kids spending time online – that it is dangerous or making them lazy. But we found that spending time online is essential for young people to pick up the social and technical skills they need to be competent citizens in the digital age.”

Importantly, regarding the concerns many parents and policymakers have about online predation, Ms. Ito told the New York Times that, “Those concerns about predators and stranger danger have been overblown.” “There’s been some confusion about what kids are actually doing online. Mostly, they’re socializing with their friends, people they’ve met at school or camp or sports.”

In the report, according to the summary, the researchers “identified two distinctive categories of teen engagement with digital media: friendship-driven and interest-driven. While friendship-driven participation centered on “hanging out” with existing friends, interest-driven participation involved accessing online information and communities that may not be present in the local peer group.” The specific findings of the study are as follows:

• There is a generation gap in how youth and adults view the value of online activity.
  • Adults tend to be in the dark about what youth are doing online, and often view online activity as risky or an unproductive distraction.
  • Youth understand the social value of online activity and are generally highly motivated to participate.
• Youth are navigating complex social and technical worlds by participating online.
  • Young people are learning basic social and technical skills that they need to fully participate in contemporary society.
  • The social worlds that youth are negotiating have new kinds of dynamics, as online socializing is permanent, public, involves managing elaborate networks of friends and acquaintances, and is always on.
• Young people are motivated to learn from their peers online.
  • The Internet provides new kinds of public spaces for youth to interact and receive feedback from one another.
  • Young people respect each other’s authority online and are more motivated to learn from each other than from adults.
• Most youth are not taking full advantage of the learning opportunities of the Internet.
  • Most youth use the Internet socially, but other learning opportunities exist.
  • Youth can connect with people in different locations and of different ages who share their interests, making it possible to pursue interests that might not be popular or valued with their local peer groups.
  • “Geeked-out” learning opportunities are abundant – subjects like astronomy, creative writing, and foreign languages.

These findings are consistent with the much of the existing research already out there about online youth behavior and Internet interactions. As I have mentioned here before, over the past year, I have been serving on the Internet Safety Technical Task Force (ISTTF), which was formed following a January 2008 agreement between social networking website operator MySpace.com and 49 state Attorneys General. As part their “Joint Statement on Key Principles of Social Networking Safety,” MySpace promised the AGs it would expand online safety tools, improve education efforts, and expand its cooperation with law enforcement. Importantly, they also agreed to create the ISTTF to study online safety issues and technologies.

The Berkman Center for Internet & Society at Harvard Law School was tapped to run the ISTTF, and the Task Force included a wide diversity of child safety groups, non-profit organization, and Internet companies. During a session the Task Force held in Washington, DC on April 30th, we heard from several of the nation’s top researchers in the field of online child safety. The presentations were quite enlightening and the videos of the sessions — as well as supporting materials — have all been posted on a special Berkman Center website. I just wanted to share all of those links with you here so that you have access to these wonderful materials. As you will see, they tell the same story the new MacArthur report does: Almost everything the press and policymakers have told us about online child actions and safety has been wrong.

Anyway, read (or watch) for yourself and decide. (P.S. When the final ISTTF report comes out later this year, it will include a massive compendium of all the relevant surveys and academic research done in this field. It will be the definitive treatment of the issue. An early draft is online here. I will post the final link here once the Task Force wraps up.)

April 30, 2008 – ISTTF Child Online Safety Expert Panel

• Teens OnlineStranger Contact and Cyberbullying: What research is telling us Amanda Lenhart, Pew Internet & American Life Project Presentation in .pdf video
• Youth & Law Enforcement Surveys Janis Wolak, Crimes against Children Research Center Presentation in .pdf video
• Social networking sites, unwanted sexual solicitation, Internet harassment, and cyberbullying Michele Ybarra, Internet Solutions for Kids, Inc. Presentation in .pdf video
• Panel Q&A video
• Further reading
  • 1 in 7 Youth: The Statistics about Online Sexual Solicitations
  • Online “Predators” and Their Victims: Myths, Realities, and Implications for Prevention and Treatment
  • Internet Safety Education for Teens: Getting It Right
  • Internet Prevention Messages: Targeting the Right Online Behaviors
  • Teens, Stranger Contact & Cyberbullying
  • How Risky Are Social Networking Sites?
  • Updated Trends in Child Maltreatment, 2006

Earlier this year, I mentioned an outstanding book that John Palfrey of the Berkman Center for Internet & Society at Harvard Law School co-edited entitled Access Denied: The Practice and Policy of Global Internet Filtering.  It’s an excellent resource for anyone studying the methods governments are (unfortunately) using to stifle online expression across the globe.  It’s one of the most important technology policy books of the year.

Well, it looks like John Palfrey will have a second title on this year’s “Best Tech Books” list.  I’ve just finished his new book with his Berkman Center colleague Urs Gasser, Born Digital: Understanding the First Generation of Digital Natives, and it is definitely worthy of your attention. In my book review posted today on the City Journal’s website, I argue that “Palfrey and Gasser’s fine early history of this generation serves as a starting point for any conversation about how to mentor the children of the Web.”  It’s a comprehensive and very even-handed discussion about a variety of concerns or Internet pathologies, including: online safety, personal privacy, copyright piracy, offensive content, classroom learning, and much more.

My City Journal review is down below, but in coming weeks I will be posting some additional thoughts about some specific things in the book worthy of more attention (including a few things I disagreed with).  Overall, I’d say Born Digital is a close runner-up in the race for “Tech Book of the Year,” closely trailing Jonathan Zittrain’s Future of the Internet and How to Stop It (which I have reviewed multiple times) and Nick Carr’s The Big Switch.  But I found far more to agree with in Born Digital than I did in those two books.  Highly recommended.

Understanding Our Digital Kids A new book offers a guide for mentoring the children of the Web.

a book review by Adam D. Thierer of

Born Digital: Understanding the First Generation of Digital Natives, by John Palfrey and Urs Gasser (Basic Books, 288 pp., $25.95)

City Journal 10 October 2008

You can’t blame parents today if they think that their children have been assimilated into the Borg or are living in the Matrix. Members of the “always on, always connected” generation have surrounded themselves with digital devices and networks and colonized cyberspace in the process. Meanwhile, back in “meatspace,” many Analog Era parents scratch their heads, trying to make sense of these momentous changes and what they mean for their kids and society.

Answers are available in Born Digital: Understanding the First Generation of Digital Natives, by John Palfrey and Urs Gasser, both of the Berkman Center for Internet & Society at Harvard Law School. Each chapter in the book addresses a different parental concern or Internet pathology: online safety, personal privacy, copyright piracy, offensive content, classroom learning, and more. Palfrey and Gasser aim “to separate what we need to worry about from what’s not so scary, (and) what we ought to resist from what we ought to embrace.”

The authors offer a balanced treatment of these issues—almost to a fault, in that they occasionally fail to develop fully their own positions. Of course, as they repeatedly—and correctly—note, often these thorny questions have no easy answers. “The hard problem,” they point out, “is how to balance caution with encouragement: How do we take effective steps to protect our children, as well as the interests of others, while allowing those same kids enough room to figure things out on their own?”

If there is a single solution, they argue, it’s education. The authors want parents, educators, and lawmakers to do more to engage the digital generation in a dialogue, instead of leaving it to fend for itself. “The traditional values and common sense that have served us well in the past will be relevant in this new world, too,” they maintain. But Palfrey and Gasser don’t rule out additional tools and methods, including technical controls, industry self-regulation, social norms, and even government action.

Consider online privacy concerns. “Never before has so much information about average citizens been so easily accessible to so many,” they note—and particularly when it comes to our kids. Despite the growing amount of online information about our kids (“digital dossiers”) and other potential threats to privacy, Palfrey and Gasser counsel prudence: “The answer . . . is not to avoid the networked publics in which so many people—especially Digital Natives—are leading their lives. Instead, we need to develop more nuanced ways to navigate these new publics.” Though “there is no single, simple answer,” they argue that “parents, peers, teachers, and mentors [all] have a role to play” to encourage youngsters to protect their information and identities. Most importantly, the digital natives must learn to use common sense when sharing information online.

The authors advocate the same reasoned approach when it comes to online child safety. The safety risks have often been greatly overstated—or at least largely misunderstood—by parents and policymakers. “The data do not suggest that the world is a more dangerous place for young people” because of the Internet, the authors contend. Most of the problems we see online today—cyber-bullying, for example—are really just old problems playing out on new platforms. “Involved parenting” and “open and honest conversations” are the most sensible responses, but intervention strategies by others—including kids’ peers—may be another part of the solution. Parental empowerment tools and industry self-regulation can help, too.

Palfrey and Gasser are open to government playing a role in some cases. They believe “governments should restrict the production and dissemination of certain types of violent content in combination with instituting mandatory, government-based ratings of these materials.” They also call for greater liability for online service providers and social networking sites to encourage them to crack down on potential dangers to children. Given their vagueness, however, both proposals would likely smash into serious First Amendment roadblocks that the authors fail to explore fully.

Palfrey and Gasser view government action less favorably when it comes to combating copyright piracy. “Creativity is the upside of this brave new world of digital media,” they suggest, but “the downside is law-breaking. The vast majority of Digital Natives are currently breaking copyright laws on a regular basis.” But what should we do about piracy? Palfrey and Gasser sidestep some of the underlying ethical issues and bluntly declare that “the goal should be for copyright holders, technologists, and their customers to exchange royalty checks with one another instead of legal complaints.” Yes, but what happens when many refuse to pay even one penny for copyrighted content, as often happens today? Education can encourage youngsters to obey the law, but difficult questions remain about how to deal with those who won’t play by the rules.

In chapters debating the Internet’s impact on learning and culture, the authors worry about shortening attention spans and the rise of a “cut-and-paste culture,” due to the immediate gratification provided by Google searches, Wikipedia, blogs, and instant messaging. On the other hand, they rightly underscore how “Digital Natives are quite sophisticated in the ways that they gather information” and are learning “sophisticated information-gathering and information-processing skills,” while also creating content and sharing information with peers in ways unimaginable just a generation ago.

It will be fascinating to see what impact these changes have on digital natives as they get older and become parents themselves. Regardless, Palfrey and Gasser’s fine early history of this generation serves as a starting point for any conversation about how to mentor the children of the Web.

Update Feb. 2009: I hosted a TLF podcast featuring Prof. Palfrey and discussed this book with him. Listen here.

This week, I have been up at Harvard University participating in another meeting of the Internet Safety Technical Task Force (ISTTF), of which I am a member. The ISTTF was organized earlier this year pursuant to an agreement between 49 state attorneys general (AGs) and social networking giant MySpace.com. A group of experts from academia, non-profit organizations, and industry were appointed to the Task Force, which is charged with evaluating the market for online child safety tools and methods and issuing a report on the matter to the AGs at the end of this year.  ISTTF members have been meeting privately and publicly in both Cambridge, MA and Washington, D.C. The Task Force has been very ably chaired by John Palfrey, co-director of Harvard’s Berkman Center for Internet & Society.

Although the ISTTF is looking at a wide variety of tools and methods associated with online child protection (ex: filters, monitoring tools, educational campaigns, etc.), many of the AGs who crafted the agreement with MySpace that led to the Task Force’s formation have made it clear that they are most interested in having the ISTTF evaluate age verification / online verification technologies.  In fact, at the start of this week’s session at Harvard Law School, AGs Martha Coakely of Massachusetts and Richard Blumenthal of Connecticut both spoke and made it abundantly clear they expect the Task Force to develop age and identify-verification tools for social networking sites (SNS). AG Blumenthal said we need to deal with “the dangers of anonymity” and repeated his standard line about online age verification: “If we can put a man on the moon, we can make the Internet safe.”  [Of course, putting a man on the moon took hundreds of billions of dollars and a decade to accomplish, but never mind that fact! Moreover, one could also argue that if we can put a man on the moon we can cure hunger, AIDS, and the common cold, but some things are obviously easier said than done. Finally, putting a man on the moon didn’t require all Americans or their kids to give up their anonymity or privacy rights in order to accomplish the feat!]

On many occasions here before, I have outlined various questions and reservations about proposals to mandate online age verification.  Last year, I also published a lengthy white paper on the issue and hosted a lively debate on Capitol Hill [transcript here] about this.  I also have discussed age verification in my book on parental controls and online child safety. [Braden Cox also talked about his experiences up at Harvard this week here, and CNet’s Chris Soghoian had a brutal assessment of this week’s proposals on his “Surveillance State” blog.]

In this essay, I will discuss the new fault lines in the debate over online age verification and outline where I think we are heading next on this front.  I will argue:

• There is now widespread understanding that it is extraordinarily difficult to verify the ages and identities of minors online using the methods we typically use to verify adults. Because of this, age verification proponents are increasingly proposing two alternative models of verifying kids before they go online or visit SNS…
• First, for those who continue to believe that we must do whatever we can to verify kids themselves, schools and school records are increasingly being viewed as the primary mechanism to facilitate that. This raises two serious questions: Do we want schools to serve as DMVs for our children? And, do we want more school records or information about our kids being accessed or put online?
• Second, for those who are uncomfortable with the idea of verifying kids or using schools, or school records, to accomplish that task, parental permission-based forms of authentication are becoming the preferred regulatory approach. Under this scheme, which might build upon the regulatory model found in the Children’s Online Privacy Protection Act of 1998 (COPPA), parents or guardians would be verified somehow and then would vouch for their children before they were allowed on a SNS, however defined.  But how do we establish a clear link between parents and kids?  And will parents be willing to surrender a great deal more information (about themselves and their kids) before their kids can go online? And, is it sensible to use a law that was meant to protect the privacy and personal information of children to potentially gather a great deal more information about them, and their parents?
• It remains very unclear how either of those two verification methods would make children safer online. Indeed, that could actually make kids less safe by compromising their personal information and creating a false sense of security online for them and their parents.
• It is highly unlikely the Internet Safety Technical Task Force will be able to reach consensus on this complicated, controversial issue. A small camp will likely flock to the sort of proposals mentioned above. Another, larger camp (including me) will flock to education-based approaches to child safety as well increased reliance on other parental empowerment tools and strategies, industry self-regulatory efforts, social norms, and better intervention strategies for troubled youth. But the age verification debate will go on and, as was the case over the past two years, the legal battleground will be state capitals across America, with AGs likely pushing for age verification mandates regardless of what the Task Force concludes.

Continue reading if you are interested in the details.

How We Could Verify Kids, and Why We Should Not Do It

Let’s assume that we want to achieve AG Blumenthal’s “man-on-the-moon” dream of verifying all kids before they go online. How would we do it?  There are really only two solutions: (1) full-blown national ID cards for kids, or (2) tapping school records about kids to somehow age-verify kids (sort of a “National ID card-Lite” scheme).

National ID Cards for Kids

The first scheme is fairly straightforward, but incredibly frightening to those of us who care about civil liberties. Basically, government could demand that all minors be issued the equivalent of a domestic passport or a national ID card. After all, minors aged 14 to 17 are already required to obtain a passport before they travel overseas. Minors under 14 must have both parents or legal guardians appear together to vouch for the child when applying for a passport. Conceivably, government could simply extend this model to incorporate a domestic identification requirement. Once the youngster had been issued such a domestic passport, it could be requested by others — including social networking sites — as proof of age. Sites could cross-reference a government national ID database to verify identity.

Clearly, however, imposing such a solution domestically would raise serious privacy concerns because it would require the collection, retention and processing of sensitive information about children.  Adults are not required to carry such a domestic passport or national ID card, so why should children? Indeed, all the same privacy concerns related to national ID cards for adults would be amplified with children because, as a society, we generally take extra precautions to protect the privacy of minors and their personal information. And a national ID card for kids would need to include a great deal of information about themselves to allow the card to be used by third parties online as an age-verifying tool. Government would need to issue an age-verified identity, user name, and password to every child.

Particularly concerning is the fact that a national ID card for children would require the creation of more government databases and bureaucracy. The potential for “mission creep” then enters the picture in that more tracking of children by government (and others) becomes possible. What other uses might there be for such information? We don’t know, and we probably don’t want to find out.

The costs of setting up and enforcing such a system would be substantial and must also be considered. Although the cost of digital storage continues to fall, we’re talking about potentially massive digital databases here. But the more important cost factor is the human time and effort that would go into  collecting, processing, and organizing such records and databases.

For those reasons, a government-issued ID card or age verification scheme for kids is a nonstarter. It would raise grave privacy concerns, induce public paranoia, probably encourage a great deal of evasion, and require significant government expenditure to enforce. Moreover, a national ID card would do little to prevent youngsters from visiting offshore sites.

Using the Schools to Help Verify Kids

So, let’s work from the assumption that National ID cards for kids is not going to fly as an online identity authentication solution.  The only other realistic scheme would involve getting the schools involved in the process.  Why?  Because to paraphrase Willy Sutton: “That’s where the data is.”  Schools have more information about our children than probably every other institution or organization combined.  They have very detailed records about kids, their ages and much more, which makes schools a logical candidate for participation in a possible age verification system for minors.  But involving schools in any age verification scheme would raise serious privacy concerns and administrative problems.

Depending on how the scheme worked, the administrative burdens imposed on schools could be significant. Someone at each school would have to be in charge of answering phones calls and e-mails from potentially hundreds of website operators looking to age-verify minors. Who will be liable if things go wrong? The school? The school district? An employee in the school’s administrative department who accidentally releases thousands of digital records? And will schools receive the additional funding needed to administer whatever scheme is mandated?

Moreover, if schools are required to create more accessible databases containing personal information about minors, who else besides social networking websites would be given access? Data breaches would become a real concern for both students and schools alike. Such a scheme could run up against federal or state laws. For example, the Family Education Rights and Privacy Act of 1974 makes it illegal to release school records without written permission from parents. Both parents and government officials have long demanded that access to school records be tightly guarded because, as a society, we take the privacy of our children very seriously.

Thus, serious questions remain about the wisdom and practicality of roping the schools into the age verification process. Most schools and school districts are already over-burdened with federal and state mandates and probably wouldn’t like the sound of additional mandates of this variety.  But what if a technology vendor could serve as the middleman and facilitate the easy transfer of some basic data about kids from the school system in an effort to provide digital credentials? That’s probably where we are heading.  Even the most vociferous advocates of age verification for minors must realize how absolutely radioactive this issue could become since school records about our kids are in play here.  Identity theft concerns are already running at an all-time high in our country and the thought of being required to surrender more info about our kids in this environment is not going to go over well with many parents.

But, again, what if we could keep to a minimum the amount of data being transferred about the child to the vendor or the SNS?  Perhaps at the beginning of each school year when a minor is registering they could be given a “secure” digital token or ID number that only associated a grade year (i.e., “sophomore”) with their name, and little or no additional info was included in that token in order to minimize the threat of identity theft or privacy violations.  Of course, the fewer pieces of information contained in that token or credential, the less likely it will be a credible verification tool, or the more likely it is it will be easy to forge or defeat (especially by kids themselves).

Regardless, whether we like it or not — and I do not like it one bit — schools are now at the center of the online age verification debate. It will be very interesting to hear what the educational community itself has to say about this development going forward.  Incidentally, no one from the educational community was present at Harvard this week as these proposals were flying.  Something tells me that school administrators and educational officials aren’t going to look too kindly on proposals that would turn them into the equivalent of a DMV for kids.

How about Parental Permission Slips for Online Verification?

Another potential way to go about online verification is to avoid verifying the kids directly and instead just verify parents (or guardians) and then get them to vouch for their children.  Some age verification advocates are now calling for such parental consent-based forms of child verification.  Specifically, they are now attempting to drive regulation through the prism of the Children’s Online Privacy Protection Act (COPPA) of 1998.

By way of background, COPPA required websites that marketed to children under the age of 13 to get “verifiable parental consent” before allowing children access to their sites. Generally speaking, the goal was to make sure that such websites were not collecting personal information about children without getting parental permission. The Federal Trade Commission (FTC), which is responsible for enforcing COPPA, adopted a sliding scale approach to obtaining parental consent. The sliding scale approach allows website operators to use a mix of the methods to comply with the law, including print-and-fax forms, follow-up phone calls and e-mails, and credit card authorizations. The FTC also authorized four “safe harbor” programs operated by private companies that help website operators comply with COPPA.

In a February 2007 report to Congress about the status of the COPPA and its enforcement, the FTC said that no changes to COPPA were necessary at this time because it had “been effective in helping to protect the privacy and safety of young children online.” In discussing the effectiveness of the parental consent methods, however, the agency also said that “none of these mechanisms is foolproof” and that “age verification technologies have not kept pace with other developments, and are not currently available as a substitute for other screening mechanisms.” This seems to imply that the FTC does not regard COPPA’s parental consent methods as the equivalent of perfect age verification.

Nonetheless, what should be evident here is that COPPA’s parental consent framework could serve as a vehicle for pushing through greater regulation of all social networking sites, not just those sites geared toward kids under 13.   Indeed, we have already seen that proposed at the state level.  For example, in the debate that took place over age verification in the North Carolina statehouse last summer, a parental permission-based verification proposal supported by North Carolina Attorney General Roy Cooper was billed as a way to strengthen and expand the COPPA framework.  (Never mind the fact that COPPA is a federal statute, or that the state of North Carolina is likely barred from regulating Internet speech and commerce thanks to the First Amendment and the Commerce Clause of the Constitution!)

In other words, future age verification mandates could arrive in the form of COPPA amendments, or at least cite COPPA’s regulatory framework as precedent.  Specifically, the proposal would be to: (a) extend COPPA’s coverage to kids up to the age of 18 and then (b) broaden the range of SNS sites that are covered by its parental consent requirements.

There are many problems associated with such a proposal, and I will get to some of them in a moment. But here’s the more interesting question that few have asked: Is COPPA really working?  It is very much unclear to me that COPPA actually works as billed, but to the extent it does, it is likely because of the very limited scale and nature of the operations it covers.  As I have said in my past writing on the issue, there is a direct relationship between the size of a site and the likelihood of success in attempting to verify its users / members. Of course, that is hardly surprising.  But let’s get a little more concrete about why that is important.  Here are the two reasons that I believe the COPPA / parental consent regime has generally worked so far, or at least hasn’t failed miserably:

(1) Many smaller sites charge a fee for admission; and

(2) The functionality of those sites is usually tightly limited. They are closed, walled gardens.

Regarding the first point: Obviously, the more a site charges for access, the more likely it is that the parent / guardian pays attention to what their kid is doing.  Of course, that doesn’t mean a bad guy couldn’t still get into those “verified” environments under false pretenses.  And there’s the problem of minors with access to credit cards.  Moreover, even assuming credit cards worked as an age verification method, there is the more practical question of whether lawmakers have the guts to mandate that every social networking site in the land start charging admission for access.  Since almost all SNSs are free-of-charge today, that is not going to be a very popular mandate!

Nonetheless, for very small, niche-oriented social networking sites geared toward younger kids, credit cards and fees are part of the reason people think COPPA has “worked.”  In essence, it acts as a bit of a roadblock or hassle thrown in the way of access, and that gets parents thinking and talking to the kids about those sites. That is the argument put forward by Denise Tayloe of Privo, one of the four FTC-approved COPPA safe harbor providers.   Ironically, Tayloe has noted that one of the problems associated with the current COPPA regime is that “Children quickly learned to lie about their age in order to gain access to the interactive features on their favorite sites. As a result,” she notes, “databases have become tainted with inaccurate information and chaos seems to be king where COPPA is concerned,” she says.

Despite these problems, Tayloe argues that COPPA serves an important role.  Even though “there is no perfect solution” and it is not possible to completely “stop a child from lying and putting themselves at risk,” Tayloe believes that COPPA “provides a platform to educate parents and kids about privacy.”  Of course, providing a platform to educate parents and kids about online privacy or safety is very important, but it is not necessarily synonymous with strict age verification.  And we don’t really have any idea what level of parent-child interaction COPPA incentivizes.  More importantly, we don’t really have any good data regarding the accuracy of claims made pursuant to COPPA’s requirements regarding the relationship between parents and the kids seeking access to the site.  How many people (kids or adults) were able to gain access under false pretenses? We don’t know.

Nonetheless, the operating assumption here is that by creating an added economic hurdle or barrier to entry (in the form of the hassle of filling out paperwork or forms), COPPA gets some parents (perhaps most?) to put more thought into what their kids are doing online, and that somehow improves online safety in larger scheme of things.  The problem is that that does not necessarily mean that their kids are operating in perfectly “secure” or “verified” environments.  The danger is that – to the extent some “bad guys” are getting on those sites under false pretenses – kids and parents may fall prey to a false sense of security after they are told the site is COPPA-verified.  Of course, COPPA wasn’t put on the books to keep “bad guys” away from kids online; it was about keeping site operators from collecting personal information about kids.

The second reason COPPA has “worked” to a limited degree is that SNS sites geared toward younger kids tightly limit functionality.  In essence, the site administrators “cripple” the sort of functionality we find in SNS sites geared toward older kids.  That fact alone makes these sites far less likely to be subject to fraudulent entry or dangerous interactions.   If I am an older teen or a pervert, why would I ever want to gain access to a site that has nothing more than drop-down menus and a few buttons to click on when interacting with others?  Thus, the primary reason that kids are likely safer in those environments has almost nothing to do with COPPA’s parental consent mechanisms and almost everything to do with the fact that most of the sites it covers are tightly controlled walled gardens with very limited functionality.

With these facts in mind, let’s gets back to the ultimate question: What would happen if we tried to apply COPPA to all social networking sites for kids of all ages? The threshold question that would need to be answered remains the same as it does today: How do we verify the parent-child relationship when someone asserts they are the parent or guardian?  That’s a very thorny question.  But let me just list out the many other questions that everyone is overlooking here:

(1) What sort of mechanisms will need to be put in place to guarantee that the parent or guardian is who they claim to be (for both initial enrollment and subsequent visit authentication)?  Sign-and-fax forms can be easily forged, so credit cards (and perhaps mandatory user fees) will likely become the default solution. A third method, follow-up phone calls, just doesn’t seem practical.  But might lawmakers demand a mix of all of the above?

(2) Regardless, how burdensome will those mandates be for parents / guardians?

(3) And how burdensome will those mandates be for SNS site operators? What kind of compliance costs / legal penalties are we talking about?

(4) Will the barriers to site enrollment become economic in character such that it requires previously free social networking sites to charge admission?

(5) If so, could that be a disadvantage to low-income families / youth?

(6) If compliance costs go through the roof for SNS sites, will this be a recipe for massive industry consolidation in order to comply with the mandates?

(7) Who is collecting the massive databases of information created by such a mandate for all SNS? Who has access to that data? What might government use it for?

(8) Will this new regime be applicable to offshore sites? And will kids flock to offshore sites as a result of such mandates on domestic sites? If some do, how will we stop them?

And so on.  Bottom line: The future of age verification battles will likely be increasingly tied up with COPPA and the question of how well parental permission-based forms of authentication might work. It is unlikely, however, that such a framework could be easily applied on “Internet scale.”  There is a world of difference between something like Disney’s “Club Penguin” and MySpace, Xanga or Bebo.  And with social networking capabilities being integrated into every site and service these days — from CNN.com to Microsoft’s Xbox Live service — one wonders how that will magnify the compliance costs and hassles for all involved.  Are parents really going to be expected to verify themselves and then their kids for every “social networking site” their kids want to visit?  That seems unnecessary, unworkable, and potentially counter-productive.

Finally, the irony of a proposal to expand COPPA in this fashion is that lawmakers would be using a law that was meant to protect the privacy and personal information of children to potentially gather a great deal more information about them, and their parents!  It’s important we not overlook the privacy implications of any effort to expand COPPA to do something it was not originally intended to cover.

Conclusion

It will likely be very difficult for the Technical Task Force to reach consensus on these controversial and complicated issues.  There are many challenging technical, legal, and even philosophical issue in play here.  The problem is that this Task Force is charged with looking at technical solutions and yet most child safety advocates and academics on the Task Force are of the mind that technical solutions are only one part — and probably the smallest part — of the sort of “layered solution” to online child safety that I describe in my book on “Parental Controls and Online Child Protection.” As I argue in that book:

“the best answer to the problem of unwanted media exposure or contact with others is for parents to rely on a mix of technological controls, informal household media rules, and, most importantly, education and media literacy efforts.”

In sum, we need to get serious about talking to our kids about online safety and proper online behavior. Education is the key, and government has a major role to play in that regard in the classroom and through awareness-building efforts. And technical tools that empower parents to better monitor and guide their child’s online experiences can help too. Social networking sites and other online service providers can offer more of those tools and also take additional steps to improve the safety of their sites and encourage a dialog about appropriate and inappropriate online behavior. Again, it’s a multi-layered effort with education and communication at the core of the plan.

It’s not like I am saying anything new here. Indeed, that layered approach was the recommended approach of two previous online safety blue ribbon task force efforts: The 2000 COPA Commission and the 2002 National Academy of Sciences “Thornburgh Commission.” And every major book about online child safety published over the last 5 years has come to the same conclusion.

But that is not likely going to be enough for state attorneys general. There is no other way for me to state this than to just come right out and say it: The AGs are looking for a silver-bullet technical solution to a complex problem they do not fully understand.  And age verification schemes are the technical bullet du jour.

Alas, for all the reasons I have stated here and elsewhere, age verification schemes are likely to fail miserably.  Even if age verification systems worked as billed, it is unlikely that kids would really be any better off.  All the academic research in this field points to a single, inescapable conclusion: The primary danger to kids online is not adult predators, it is other kids.  In particular, it is peer-on-peer harassment and cyber-bullying.   As parents and a society, we have to do more — a lot more — to address that problem.

Age verification schemes, however, aren’t going to help us solve that problem.  Worse yet, by creating the illusion of safety, it could compromise our children’s privacy in the process and create a false sense of security when kids or their parents come to believe they are operating in “trusted” online environments.  For the sake of our children, it is essential we not fall prey to such a fatal conceit.